Required CVE Record Information
Description
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities.
References 5 Total
- sunsolve.sun.com: 201310 vendor-advisory
- exchange.xforce.ibmcloud.com: solaris-sshaudit-weak-security(39185) vdb-entry
- osvdb.org: 44332 vdb-entry
- oval.cisecurity.org: oval:org.mitre.oval:def:5282 vdb-entrysignature
- sunsolve.sun.com: 103172 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- sunsolve.sun.com: 201310 vendor-advisoryx_transferred
- exchange.xforce.ibmcloud.com: solaris-sshaudit-weak-security(39185) vdb-entryx_transferred
- osvdb.org: 44332 vdb-entryx_transferred
- oval.cisecurity.org: oval:org.mitre.oval:def:5282 vdb-entrysignaturex_transferred
- sunsolve.sun.com: 103172 vendor-advisoryx_transferred